Friday, July 1, 2011

Securing WebService

Securing WebService With SOAP Headers and ExtensionsSOAP headers can be used for passing authentication data out-of-band. SOAP extensions are equally ideal for examining SOAP headers and rejecting calls that lack the required authentication data. Combine the two and we can write secure Web services that cleanly separate business logic from security logic. Following sample present a technique for building secure Web services using SOAP headers and SOAP extensions. ------------------------------------------------------------------------------------------------
WebService Code